Fortinet Firewall Breach Affects Over 15 Governments and Fortune 500 Companies
Key facts
- Fortinet Firewall Breach Affects Over 15 Governments and Fortune 500 Companies
- A massive cyberattack targeting Fortinet firewalls has compromised credentials of Fortune 500 companies and over 15 governments, according to cybersecurity researchers.
- Source: PR Times
- Date: June 18, 2026
Direct answer
A massive cyberattack targeting Fortinet firewalls has compromised credentials of Fortune 500 companies and over 15 governments, according to cybersecurity researchers.
- Citation
- Fortinet Firewall Breach Affects Over 15 Governments and Fortune 500 Companies (June 18, 2026), PR Times
- Source
- PR Times
- Date
- June 18, 2026
A massive cyberattack targeting Fortinet firewalls has compromised credentials of Fortune 500 companies and over 15 governments, according to cybersecurity researchers.
📋 Article Processing Timeline
- 📰 Published: June 18, 2026 at 11:31
- 🔍 Collected: June 18, 2026 at 11:45 (14 min after Published)
- 🤖 AI Analyzed: June 19, 2026 at 10:34 (22h 49m after Collected)
Central News
(CNA, Washington, 17th - International News Report) Cybersecurity researchers have revealed a large-scale hacking campaign targeting Fortinet firewall devices, infiltrating globally recognized institutions. Evidence indicates that login credentials from Fortune 500 companies and government agencies across more than 15 countries have been stolen.
Hudson Rock, a firm tracking cyber threats, stated that most affected devices are located in the United States, India, and Taiwan, describing the espionage operation as 'shocking' in scale.
Hudson Rock reported that approximately 75,000 Fortinet firewalls and VPNs have been compromised, with hackers likely gaining deeper access to these systems to steal sensitive data. VPNs are tools used by enterprises to secure networks and enable remote employee access.
Fortinet acknowledged that hackers have targeted its firewall and VPN devices to steal account credentials. The attackers are using data obtained from 'past incidents' to repeatedly attempt password cracking—known as 'brute force attacks'—to breach target networks or devices.
Fortinet did not immediately respond to Reuters' inquiries regarding the scope of the attack disclosed by researchers. Reuters also could not confirm how many stolen passwords have led to actual corporate intrusions.
Reuters noted that the U.S. Cybersecurity and Infrastructure Security Agency (CISA), the Federal Bureau of Investigation (FBI), and the White House National Cybersecurity Director have not responded to email inquiries. Cybersecurity officials in India and Taiwan have also not replied.
Experts pointed out that the leaked code is written in Russian, suggesting the operation may originate from a Russian cybercrime group. (Translation: Chi-Chin-Ling) 1150618
Stand with the truth. Every sponsorship helps protect press freedom.
Download the CNA 'Breaking News' app to stay updated in real time.
Text, images, and videos on this website may not be reproduced, broadcast, or transmitted without authorization.
(CNA, Washington, 17th - International News Report) Cybersecurity researchers have revealed a large-scale hacking campaign targeting Fortinet firewall devices, infiltrating globally recognized institutions. Evidence indicates that login credentials from Fortune 500 companies and government agencies across more than 15 countries have been stolen.
Hudson Rock, a firm tracking cyber threats, stated that most affected devices are located in the United States, India, and Taiwan, describing the espionage operation as 'shocking' in scale.
Hudson Rock reported that approximately 75,000 Fortinet firewalls and VPNs have been compromised, with hackers likely gaining deeper access to these systems to steal sensitive data. VPNs are tools used by enterprises to secure networks and enable remote employee access.
Fortinet acknowledged that hackers have targeted its firewall and VPN devices to steal account credentials. The attackers are using data obtained from 'past incidents' to repeatedly attempt password cracking—known as 'brute force attacks'—to breach target networks or devices.
Fortinet did not immediately respond to Reuters' inquiries regarding the scope of the attack disclosed by researchers. Reuters also could not confirm how many stolen passwords have led to actual corporate intrusions.
Reuters noted that the U.S. Cybersecurity and Infrastructure Security Agency (CISA), the Federal Bureau of Investigation (FBI), and the White House National Cybersecurity Director have not responded to email inquiries. Cybersecurity officials in India and Taiwan have also not replied.
Experts pointed out that the leaked code is written in Russian, suggesting the operation may originate from a Russian cybercrime group. (Translation: Chi-Chin-Ling) 1150618
Stand with the truth. Every sponsorship helps protect press freedom.
Download the CNA 'Breaking News' app to stay updated in real time.
Text, images, and videos on this website may not be reproduced, broadcast, or transmitted without authorization.
FAQ
When was the Fortinet attack discovered?
Hudson Rock reported it in June 2024. Details were covered by Reuters and other media.
Are Japanese companies affected?
Not explicitly mentioned, but given Fortinet's market presence, Japanese firms are likely at risk.
What immediate steps can prevent the attack?
Strengthen passwords, enable MFA, and update firmware immediately.